![]() The units can communicate without an IPSec tunnel but the same issue happens when the IPSec connection is over a GRE tunnel.Įxample tcpdump tcpdump -vv host So every ping results in 3 packets exchanged rather than 2. The response is just an encapsulated ICMP echo response. Looking at these packets with Wireshark, it seems like the ping request sends two packets, one encapsulated and one not. The ping response is always just an ESP packet. Whenever I ping across the tunnel, the ping request is sent as BOTH an ESP and ICMP packet. The tunnels SAs get setup without any issues and traffic can pass across the connection. ![]() I've been using Strongswan to setup an IPSec tunnel between two units.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |